$ rpki-client -vvf rpki.apnic.net/member_repository/A9125475/AB4479721D7811E2ADB6F2C408B02CD2/5EC9A4DE822111F0A7AEE382C4F9AE02.roa File: 5EC9A4DE822111F0A7AEE382C4F9AE02.roa (raw, json) Hash identifier: mRWVFzSqyGBXd1tEsxzwbFd/2hUy0NaLH2Ze/iVKJwo= Subject key identifier: 32:3D:D0:7F:31:64:F2:8D:8F:60:45:43:F8:89:63:E5:D3:60:BF:0D Certificate issuer: /CN=A9125475/serialNumber=4440F6C422E9500C7D46A62D7DEB70D33A88750E Certificate serial: 3709 Authority key identifier: 44:40:F6:C4:22:E9:50:0C:7D:46:A6:2D:7D:EB:70:D3:3A:88:75:0E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RED2xCLpUAx9RqYtfetw0zqIdQ4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125475/AB4479721D7811E2ADB6F2C408B02CD2/5EC9A4DE822111F0A7AEE382C4F9AE02.roa Signing time: Tue 26 Aug 2025 02:07:09 +0000 ROA not before: Tue 26 Aug 2025 02:07:08 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 45806 IP address blocks: 61.7.193.0/24 maxlen: 24 122.155.68.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125475/AB4479721D7811E2ADB6F2C408B02CD2/RED2xCLpUAx9RqYtfetw0zqIdQ4.crl rsync://rpki.apnic.net/member_repository/A9125475/AB4479721D7811E2ADB6F2C408B02CD2/RED2xCLpUAx9RqYtfetw0zqIdQ4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RED2xCLpUAx9RqYtfetw0zqIdQ4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Sep 2025 14:20:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14089 (0x3709) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125475, serialNumber=4440F6C422E9500C7D46A62D7DEB70D33A88750E Validity Not Before: Aug 26 02:07:08 2025 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=68ad16cc-d294 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:04:a4:fd:6c:30:ba:28:47:10:eb:a0:9f:6f: 11:85:21:b9:d7:20:17:bb:73:2c:a2:93:9f:b1:a6: 18:bc:a0:ce:59:10:5f:c1:5f:70:b1:83:9e:3d:17: 39:e7:87:e5:cf:4d:29:e7:cb:10:e9:62:ff:41:92: 67:d0:df:3d:06:c0:ca:85:ca:3a:ba:5e:f1:c7:ac: 03:4a:3e:a7:7e:3e:5f:ac:7a:ca:84:77:a8:66:e0: ba:ea:fa:8a:ef:9e:3f:da:1b:5f:04:a0:23:1b:d2: 7e:4e:c6:a5:67:74:28:1d:a6:97:9c:fa:70:79:e8: a5:32:e1:d5:4a:51:e5:e2:2a:23:a2:c9:38:6f:e2: fe:f4:92:5b:dd:cd:e2:54:9c:f7:70:ce:99:b0:3f: 0c:22:dd:95:bb:2b:fc:95:a7:c6:ae:ea:77:ad:c8: 81:a8:02:39:1e:52:9c:9a:35:2a:e5:57:ba:08:b2: 74:79:f1:6b:fa:5d:49:ba:9a:72:be:ed:5d:4f:6d: 27:75:04:f3:3c:e7:15:c7:cb:97:e2:5b:6e:98:82: f4:3c:78:90:40:01:4e:47:4c:4c:df:51:1c:60:76: 4a:be:ad:c6:52:1e:bd:44:16:40:f1:c8:95:1d:ba: ae:5f:20:c8:38:b0:89:db:5e:38:93:bb:48:2f:46: 9f:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:3D:D0:7F:31:64:F2:8D:8F:60:45:43:F8:89:63:E5:D3:60:BF:0D X509v3 Authority Key Identifier: keyid:44:40:F6:C4:22:E9:50:0C:7D:46:A6:2D:7D:EB:70:D3:3A:88:75:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125475/AB4479721D7811E2ADB6F2C408B02CD2/RED2xCLpUAx9RqYtfetw0zqIdQ4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RED2xCLpUAx9RqYtfetw0zqIdQ4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125475/AB4479721D7811E2ADB6F2C408B02CD2/5EC9A4DE822111F0A7AEE382C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.7.193.0/24 122.155.68.0/24 Signature Algorithm: sha256WithRSAEncryption 12:82:96:95:57:9e:30:35:26:83:d6:47:3b:12:6a:8b:0e:1a: 66:e3:80:f1:9f:b2:cf:c2:5b:f2:42:ac:d9:4e:bd:cf:85:3d: 25:a7:d7:95:e8:99:d9:8a:4c:13:c0:54:49:45:50:4c:4e:e7: b8:a0:d0:28:57:47:19:bb:36:fe:a1:0a:06:20:b9:ae:af:4d: bb:9c:65:8a:f3:5c:31:3b:52:06:10:b9:59:de:3a:9c:8d:57: 85:f6:27:64:01:5b:3d:d2:ae:d0:5a:61:a0:38:ae:cc:75:12: 3e:b8:ed:bc:3f:31:f7:27:c8:b3:d9:68:ab:f0:14:5b:82:cf: 39:b6:06:4b:e3:2c:77:60:7b:77:da:54:46:4d:63:19:94:1f: 25:2f:7d:29:3e:36:f1:91:c0:7d:bb:8d:22:94:f3:59:ab:80: 21:3b:76:8d:aa:2e:a7:3a:e5:be:6d:75:2c:9d:f7:05:57:c2: 4e:c0:29:55:e0:c7:1b:bd:ef:6b:c6:7d:8e:78:12:0b:fe:c2: 29:ba:b0:b6:ed:4a:49:7b:b1:ec:bb:5d:24:a2:2a:1b:ae:0f: 93:f5:82:24:72:42:52:fd:72:1a:d2:cd:fd:07:d6:9d:8e:2c: 98:0c:9f:3f:67:cd:0e:de:04:63:9a:28:c0:89:ca:03:fe:3d: eb:96:e9:e3 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICNwkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjU0NzUxMTAvBgNVBAUTKDQ0NDBGNkM0MjJFOTUwMEM3RDQ2QTYyRDdERUI3MEQz M0E4ODc1MEUwHhcNMjUwODI2MDIwNzA4WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGFkMTZjYy1kMjk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAugSk/WwwuihHEOugn28RhSG51yAXu3MsopOfsaYYvKDOWRBfwV9wsYOePRc5 54flz00p58sQ6WL/QZJn0N89BsDKhco6ul7xx6wDSj6nfj5frHrKhHeoZuC66vqK 754/2htfBKAjG9J+TsalZ3QoHaaXnPpweeilMuHVSlHl4iojosk4b+L+9JJb3c3i VJz3cM6ZsD8MIt2Vuyv8lafGrup3rciBqAI5HlKcmjUq5Ve6CLJ0efFr+l1Juppy vu1dT20ndQTzPOcVx8uX4ltumIL0PHiQQAFOR0xM31EcYHZKvq3GUh69RBZA8ciV HbquXyDIOLCJ2144k7tIL0afLwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFDI90H8x ZPKNj2BFQ/iJY+XTYL8NMB8GA1UdIwQYMBaAFERA9sQi6VAMfUamLX3rcNM6iHUO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNTQ3NS9BQjQ0Nzk3MjFE NzgxMUUyQURCNkYyQzQwOEIwMkNEMi9SRUQyeENMcFVBeDlScVl0ZmV0dzB6cUlk UTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JFRDJ4Q0xwVUF4OVJxWXRmZXR3MHpxSWRRNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjU0NzUvQUI0NDc5NzIxRDc4MTFFMkFEQjZGMkM0MDhCMDJDRDIvNUVDOUE0REU4 MjIxMTFGMEE3QUVFMzgyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAA9B8EDBAB6m0QwDQYJKoZIhvcNAQELBQADggEBABKClpVX njA1JoPWRzsSaosOGmbjgPGfss/CW/JCrNlOvc+FPSWn15XomdmKTBPAVElFUExO 57ig0ChXRxm7Nv6hCgYgua6vTbucZYrzXDE7UgYQuVneOpyNV4X2J2QBWz3SrtBa YaA4rsx1Ej647bw/MfcnyLPZaKvwFFuCzzm2BkvjLHdge3faVEZNYxmUHyUvfSk+ NvGRwH27jSKU81mrgCE7do2qLqc65b5tdSyd9wVXwk7AKVXgxxu972vGfY54Egv+ wim6sLbtSkl7sey7XSSiKhuuD5P1giRyQlL9chrSzf0H1p2OLJgMnz9nzQ7eBGOa KMCJygP+PeuW6eM= -----END CERTIFICATE-----Generated at Mon Sep 8 16:17:29 2025 by rpki-client